2c781205a179b919d77d2592cc9903e0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c781205a179b919d77d2592cc9903e0_JaffaCakes118
Size

1020KB
MD5

2c781205a179b919d77d2592cc9903e0
SHA1

4392464c5be3a559ebd99d2a9a63aa0871eb0584
SHA256

f51ad24d792278526f03036ee11c018e42b9dfd2daeb3aa29d07de9913b03a23
SHA512

e272d09c7fd31cf0c92728a1645b9ee12245e672d3d98a91d6ea2e240ccce0672872861042994c3256650452a1d29f3b931943e59ffd1c5c99e23d24b65a0a12
SSDEEP

12288:fnRkhIBuLmo5wQgCs0hmtnc1SMhtLE8PneW5QrwdRG2IQMfaUIIVruMmSALA:Jkdmo9oYmG00BneW5QrwdgdfaUIIdK+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c781205a179b919d77d2592cc9903e0_JaffaCakes118

Files

2c781205a179b919d77d2592cc9903e0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 663KB - Virtual size: 663KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ